This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lB47mlO74C4stDl6bRoB2Aym5Bg.cer File: lB47mlO74C4stDl6bRoB2Aym5Bg.cer (raw, json) Hash identifier: zy9ntq9s5uAdOqYbHedWSLEUE71ItKCGi4vXzh1xe8M= Subject key identifier: 94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECCC17AE7033D3420A63C146CD5CA3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200014 IP: 185.39.96.0/22 IP: 2a01:48e0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:cc:17:ae:70:33:d3:42:0a:63:c1:46:cd:5c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=941e3b9a53bbe02e2cb4397a6d1a01d80ca6e418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:53:46:1e:f8:87:79:48:22:12:e5:3e:38:4d: 81:14:fb:02:9c:1c:bd:46:c3:ef:04:02:6e:54:6b: 74:b2:00:71:d3:8c:3c:01:c2:db:89:7f:cd:96:c7: 18:11:01:14:27:df:09:73:cc:db:04:9f:4b:e1:0c: 2e:19:61:24:ca:a4:55:49:69:1a:d0:97:1b:8d:3c: 57:70:78:0a:60:1f:a3:63:d2:28:7a:c9:67:8d:92: fb:86:eb:72:90:a1:f7:3d:33:fb:19:61:57:c5:7b: 2f:94:92:28:99:3d:a6:d7:f9:28:f0:53:c3:7d:83: 98:db:b5:0c:ac:7f:7d:c7:d3:c0:db:0f:78:01:a4: 22:da:dd:2c:76:0d:14:e3:fc:06:f8:62:eb:25:8b: 0c:0d:ac:61:40:08:11:1c:f9:5e:8c:4b:08:17:de: a1:0f:7b:28:54:a2:62:ee:b1:cb:43:d3:bd:e6:f9: a6:f1:1b:42:11:aa:43:53:98:7c:27:ca:1e:89:a9: a8:d9:87:ea:22:0b:35:93:d9:de:20:df:d4:0c:fe: 1c:75:ff:5b:1f:e8:25:63:03:ae:ba:71:d0:b7:07: e6:8e:ad:55:d7:df:ce:7b:37:23:97:6e:01:6e:b8: fc:ba:22:a1:14:ee:6a:e4:46:09:66:8a:1b:2e:d2: 0e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.39.96.0/22 IPv6: 2a01:48e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200014 Signature Algorithm: sha256WithRSAEncryption 67:7d:59:85:c6:6a:c6:f1:ca:ea:f7:e0:06:ae:c2:64:e2:59: e2:69:bc:12:2a:9f:76:73:b2:65:b4:15:20:b1:28:cd:f3:a5: 71:f0:81:22:ad:88:72:12:e5:37:d8:39:4e:94:3a:4b:30:0d: 2f:6c:cf:52:69:4c:2f:de:a2:a7:5d:27:dd:ff:4d:1e:e3:6e: df:c9:50:96:78:20:f7:d9:b7:43:49:79:be:3f:d5:e2:4d:71: cc:7d:0e:f3:25:9b:c9:77:52:91:5a:77:f1:83:09:ad:b9:d8: f6:04:48:04:ce:a1:37:7c:b3:1c:14:97:cb:2d:61:71:a5:76: b4:46:c4:a5:0d:6c:e1:8e:f1:02:2d:5c:2b:79:01:6f:48:d9: 21:ea:9e:f1:fe:65:94:c6:6f:65:74:b9:8f:ce:d1:7a:bd:a8: 7d:a2:2b:fd:59:ef:d5:56:35:d7:f0:93:9f:8e:92:e0:0b:b1: 39:a4:c1:0b:ed:19:ad:04:73:ac:0d:98:db:4a:03:3b:0b:ec: 11:7b:e5:bc:52:69:5e:8a:c8:33:a8:15:50:1f:53:ff:64:d4: db:45:d4:94:cf:bc:8a:b9:28:40:1c:1d:11:3a:09:22:96:f7: 0b:d3:f8:09:f3:1b:f2:65:77:37:aa:8e:d6:91:9f:e1:bd:d5: 49:fd:4c:01 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt57MwXrnAz00IKY8FGzVyjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDFlM2I5YTUzYmJlMDJlMmNiNDM5N2E2ZDFhMDFkODBjYTZlNDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFNGHviHeUgiEuU+OE2BFPsCnBy9 RsPvBAJuVGt0sgBx04w8AcLbiX/NlscYEQEUJ98Jc8zbBJ9L4QwuGWEkyqRVSWka 0JcbjTxXcHgKYB+jY9IoeslnjZL7hutykKH3PTP7GWFXxXsvlJIomT2m1/ko8FPD fYOY27UMrH99x9PA2w94AaQi2t0sdg0U4/wG+GLrJYsMDaxhQAgRHPlejEsIF96h D3soVKJi7rHLQ9O95vmm8RtCEapDU5h8J8oeiamo2YfqIgs1k9neIN/UDP4cdf9b H+glYwOuunHQtwfmjq1V19/Oezcjl24Bbrj8uiKhFO5q5EYJZoobLtIOvQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFJQeO5pTu+AuLLQ5em0aAdgMpuQYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzLzA4ZTQw NC1mNDI2LTQyZTItOTU5NC1kYTk5ZTM0Y2MzMGIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvMDhlNDA0 LWY0MjYtNDJlMi05NTk0LWRhOTllMzRjYzMwYi8xL2xCNDdtbE83NEM0c3REbDZi Um9CMkF5bTVCZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuSdgMA0EAgACMAcDBQAqAUjgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMNTjANBgkqhkiG9w0BAQsFAAOCAQEAZ31ZhcZqxvHK 6vfgBq7CZOJZ4mm8EiqfdnOyZbQVILEozfOlcfCBIq2IchLlN9g5TpQ6SzANL2zP UmlML96ip10n3f9NHuNu38lQlngg99m3Q0l5vj/V4k1xzH0O8yWbyXdSkVp38YMJ rbnY9gRIBM6hN3yzHBSXyy1hcaV2tEbEpQ1s4Y7xAi1cK3kBb0jZIeqe8f5llMZv ZXS5j87Rer2ofaIr/Vnv1VY11/CTn46S4AuxOaTBC+0ZrQRzrA2Y20oDOwvsEXvl vFJpXorIM6gVUB9T/2TU20XUlM+8irkoQBwdEToJIpb3C9P4CfMb8mV3N6qO1pGf 4b3VSf1MAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:49 2026 by rpki-client